NetBSD imake file.0 Target Insecure /tmp File Creation

2005-10-31T00:00:00
ID OSVDB:20731
Type osvdb
Reporter Jeremy C. Reed()
Modified 2005-10-31T00:00:00

Description

Vulnerability Description

NetBSD contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the imake program creating Makefiles in the /tmp directory insecurely. It is possible for a user to use a symlink style attack to overwrite arbitrary files, resulting in a loss of integrity.

Solution Description

Upgrade to version 2.0.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

NetBSD contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the imake program creating Makefiles in the /tmp directory insecurely. It is possible for a user to use a symlink style attack to overwrite arbitrary files, resulting in a loss of integrity.

References:

Vendor URL: http://www.netbsd.org/ Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1015132 Related OSVDB ID: 20725 Related OSVDB ID: 20728 Related OSVDB ID: 20726 Related OSVDB ID: 20727 Related OSVDB ID: 20729 Related OSVDB ID: 20730 Other Advisory URL: http://www.uniras.gov.uk/niscc/docs/br-20051101-00969.html?lang=en Keyword: NetBSD Security Advisory 2005-009 CVE-2005-4691 Bugtraq ID: 15263